Most popular security repositories and open source projects

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

Astra

Automated Security Testing For REST API's

411   2609   2609  

wolfssl

The wolfSSL library is a small, fast, portable implementation of TLS/S...

895   2609   2609  

pingcastle

PingCastle - Get Active Directory Security at 80% in 20% of the time

322   2609   2609  

WWDC

You don't have the time to watch all the WWDC session videos yourself?...

142   2601   2601  

java-sec-code

Java web common vulnerabilities and security code which is base on spr...

704   2581   2581  

x-springboot

X-SpringBoot是一个轻量级的Java快速开发平台,基于springboot3和jdk21,使...

788   2569   2569  

awesome-game-security

awesome game security [Welcome to PR]

357   2561   2561  

RedELK

Red Team's SIEM - tool for Red Teams used for tracking and alarming ab...

387   2550   2550  

Picocrypt

A very small, very simple, yet very secure encryption tool.

154   2544   2544  

captcha

Captcha for Laravel 5+

467   2534   2534  

content

Security automation content in SCAP, Bash, Ansible, and other formats

747   2527   2527  

windows_hardening

HardeningKitty and Windows Hardening Settings

330   2522   2522  

rita-legacy

Real Intelligence Threat Analytics (RITA) is a framework for detecting...

360   2516   2516  

redteam_vul

红队作战中比较常遇到的一些重点系统漏洞整理。

464   2513   2513  

NextDNS-Config

Setup guide for NextDNS, a DoH proxy with advanced capabilities

63   2511   2511  

bettercap

DEPRECATED, bettercap developement moved here: https://github.com/bett...

338   2501   2501  

nodejsscan

nodejsscan is a static security code scanner for Node.js applications.

342   2498   2498  

Elkeid

Elkeid is an open source solution that can meet the security requireme...

462   2493   2493  

piknik

Copy/paste anything over the network.

102   2489   2489  

DDoS-Ripper

DDos Ripper a Distributable Denied-of-Service (DDOS) attack server tha...

607   2488   2488  

c-jwt-cracker

JWT brute force cracker written in C

270   2486   2486  

FISCO-BCOS

FISCO BCOS(发音为/ˈfɪskl bi:ˈkɒz/)是一个稳定、高效、安全的许可区块链...

728   2485   2485  

pac4j

Security engine for Java (authentication, authorization, multi framewo...

698   2482   2482  

keystone

Keystone assembler framework: Core (Arm, Arm64, Hexagon, Mips, PowerPC...

489   2467   2467  

authpass

AuthPass - Password Manager based on Flutter for all platforms. Keepas...

259   2466   2466  

winafl

A fork of AFL for fuzzing Windows binaries

546   2464   2464  

OnionBrowser

An open-source, privacy-enhancing web browser for iOS, utilizing the T...

482   2463   2463  

kics

Find security vulnerabilities, compliance issues, and infrastructure m...

338   2459   2459  

nlp

兜哥出品 <一本开源的NLP入门书籍>

562   2456   2456  

u2f-zero

U2F USB token optimized for physical security, affordability, and styl...

203   2447   2447  

fosite

Extensible security first OAuth 2.0 and OpenID Connect SDK for Go.

379   2443   2443  

king-phisher

Phishing Campaign Toolkit

565   2440   2440  

reconspider

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanni...

354   2437   2437  

bearer

Code security scanning tool (SAST) to discover, filter and prioritize...

128   2384   2384  

fibratus

Adversary tradecraft detection, protection, and hunting

200   2374   2374  

find-sec-bugs

The SpotBugs plugin for security audits of Java web applications and A...

482   2370   2370  

solo1

Solo 1 firmware in C

282   2352   2352  

security-bundle

Provides a tight integration of the Security component into the Symfon...

21   2336   2336  

secure

HTTP middleware for Go that facilitates some quick security wins.

144   2321   2321  

awesome-iot-hacks

A Collection of Hacks in IoT Space so that we can address them (hopefu...

422   2298   2298  

sn0int

Semi-automatic OSINT framework and package manager

204   2297   2297  

ScubaGear

Automation to assess the state of your M365 tenant against CISA's base...

312   2286   2286  

awesome-cloud-security

🛡️ Awesome Cloud Security Resources ⚔️

338   2271   2271  

vulnhuntr

Zero shot vulnerability discovery using LLMs

250   2271   2271  

accesscontrol

Role and Attribute based Access Control for Node.js

181   2269   2269  

wifipumpkin3

Powerful framework for rogue access point attack.

319   2267   2267  

xray

XRay is a tool for recon, mapping and OSINT gathering from public netw...

298   2265   2265  

git-dumper

A tool to dump a git repository from a website

281   2263   2263  

Peergos

A p2p, secure file storage, social network and application protocol

181   2248   2248  

megalinter

🦙 MegaLinter analyzes 50 languages, 22 formats, 21 tooling formats, e...

263   2246   2246